View Issue Details
|ID||Project||Category||View Status||Date Submitted||Last Update|
|0005247||CentOS-6||-OTHER||public||2011-11-16 02:21||2013-01-09 13:37|
|Priority||immediate||Severity||major||Reproducibility||have not tried|
|Target Version||Fixed in Version|
|Summary||0005247: sshd does not close existing password authentificated connections in usercontext of a user changing his password|
|Description||solution: if a user changes his password all sshd processes belonging to this user have to close all existing connections that have been opened using this password at the time where the new [password||password_hash] is stored in the database.|
|Tags||No tags attached.|
That normal behavior of openssh, for example if you do a wrong modification in sshd configuration, you can still fix it as long as you don't close your active ssh session.
You can report RFE upstream, can't be changed in CentOS side.
maybe workaround like this (not tested)?
yes <new_password> | passwd &
What is user can use both public key authetication and password based?
Then you recommend to kill all user's sessions authenticated by PK?
This is not way how OpenSSH works and even is not related to CentOS IMO.